No Rate Limitation on Regenerate Api Key

Disclosed: 2017-08-21 17:41:05 By footstep To weblate

Unknown

Vulnerability Details

Hi, I discovered that there is no request throttling or limit on api key regeneration. Though theres a little change while making a total of 30 requests in a few seconds, server error occurred then it continued. ##Screenshot {F197872} In the screenshot `685` denotes a processed request and `6052` denotes an error: on the server. Shuaib

Actions

View on HackerOne

Report Stats

Report ID: 243619
State: Closed
Substate: resolved
Upvotes: 5

No Rate Limitation on Regenerate Api Key

Vulnerability Details

Actions

Report Stats

Share this report